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Total word count - document A 0 
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...ABSTRACT A, B) , each including a plurality of key fragments, is 

?enerated. For each transmission session, different sets of key 
ragments may be periodically selected (13) from one of the key blocks 
and used to encrypt the signals (12). Data indicative of the set 
selection (19) is generated. The key is... 

...to each receiver. The set selection data is transmitted to all receivers 
along with the encrypted signals and used to construct the key fragment 
set tor decryption of the transmitted signals. During the transmission 
session, the other key block may be varied to form a replacement key 
which is distributed to each receiver... 

...at one time by selecting a set in the varied key block for use in 
encryption and decryption. 

...SPECIFICATION of the decrypted common audio key, is then used to decrypt 
the audio signal . 

An encrypted common audio key is periodically transmitted to each 
receiver unit, preferably at least once every transmission session and... 

...of a new or replacement common audio key. The replacement key includes a 
current key block identical to that of the previous key and newly 
varied key block, it is encrypted and distributed for storage by each 
receiver unit. At the end of a transmission session, upon command, in the 
form of a new encryption key number indicating a set of fragments 
from the varied key block for use, all subscriber units switch from one 
block of the common audio key to the other . Thus, a replacement key 
can be installed without interruption of the operation of the system. 



The integrity of the. 
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Full text Word Count: 7075 
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Detailed Description 

English Abstract 

A system for the exchange of cryptographic keys includes a first peer 
source and a second peer system . The first peer source is capable of 
displaying a cryptographic key adapted to at least one of encrypt and 
decrypt electronic information, in turn, the second peer system 
capable of capturing the cryptographic key. Advantageously, the second 
peer system is capable of capturing the cryptographic key such that a 
user of the second peer system is capable of visually confirming 
receipt of the cr tographic Key from the first peer... 

...source and second peer source within a field of view of a user of the 
second peer system as the second peer system captures the 
cryptographic key. 

French Abstract 

...a l'echange de cles cryptographiques et comprenant une premiere source 
d'homologue et un second systeme d'homologue. La premiere source 
d'homologue est capable d'afficher une cle cryptographique concue pour au 
moins chiffrer et dechiffrer des informations electroniques . Le second 
systeme d'homologue est capable de capturer la cle cryptographique. Le 
second systeme d'homologue presente un caractere avantageux en ce 
qu'il est capable de capturer la... 



...et la seconde source d'homologue dans un champ de vue d'un utilisateur 
du second systeme d'homologue quand celui-ci capture la cle 
cryptograph! que. 

Detailed Description 

information. The electronic information can be encrypted and 
transmitted by one or more devices or systems capable of encrypting 
electronic information and transmitting the encrypted information. 
Similarly, the encrypted information can be received and decrypted by one 
or more devices or systems capable of receiving encrypted infonnation 
and decrypting the encrypted information into electronic information. 

in this regard, the encrypted information can be decrypted utilizing a 
copy of the cryptographic key when the cryptographic key comprises a 
private key (privatekey cryptography), or... 

...public key (public-key cryptography). 

in one embodiment, the second peer system 14 includes a second 
communication system 26 capable of encoding electronic information 
with the cryptographic key and thereafter transmitting the encrypted 
infori nation. 

Similarly, in one embodiment, the... 
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English Abstract 

A video on demand (VOD) method, consistent with the invention involves 
storing multipleselecti ve encrypted VOD cotnent on a VOD server; 
receiving an order for the VOD contentspecifying delivery to a target 
decoder; determining what CA encryption system is associatedwi th the 
order; stripping al I encrypted segments from the multiple selectively 

encrypted contentthat are not associated witht he order to produce 
single selectively encrypted VOD content tothe target decoder. The 
multiple selectively encrypted VOD content can be created by examining 
unencrypted data representing digital content to identify segments of 
content for encryption ; encrypting the identified segments fo content 
using a first encryption method associated with a first conditional 
access system to produce second encrypted segments; and replacing the 
identified segments of content witht he first encrypted content and the 
second encrypted content in the digital content, to produce the multipe 
selectively encrypted VOD content. 

French Abstract 

...de contenu identifies a l'aide d*un second procede de cryptage associe 
a un second systeme d'acces conditionnel afin de produire des seconds 
segments cryptes; et a remplacer les segments... 

Detailed Description 

... of content to be encrypted that are important or critical to the 
decoding of the content , duplicating those selected segments 
content and encrypting each copy using a different encryption 
method (one for each CA system in use). The resulting multiple 
selectively encrypted content is then... 

...understand that any time critical PCR information should be fixed along 
with the Continuity Counter information in the duplicated packets. 

when VOID content is ordered by a subscriber at 214, the cable system 
(e.g., using registration information... 

...what type of STB is associated with the order and thus what type of CA 
encryption system is being used by the ordering STB at 218. Once this 
is determined, there is... 
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English Abstract 

...Unencrypted data representing digital content is examined to identify 
at least segments of content for encryption (608). The identified 
segments of content are duplicated (610) and then encrypted using a 
first encryption method associated with a first DRM to produce first 
encrypted segments . Duplicates are encrypted using a second 
encryption method associated with a second drm to produce second 
encrypted segments (614). A set of pointers are generated that point 
to the first and second encrypted segments content (618). A file is 
then created containing first and second encrypted segments of content 
(622). A file is then created containing first and second encrypted 
segments of content, pointers and unencrypted content along with DRM 
rights data to produce a selectively encrypted multiple DRM enabled 
file. 
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English Abstract 

An encryption arrangement for multiple encryption of television 
programs (100). A system according to embodiments of the present 
invention multiple encrypts only a portion of data (118,124) required 
for full presentation of a television program to permit coexistence of 
multiple conditional access encryption systems associated with 
multiple manufacturer's set-top boxes within a single system. By only... 
...portion of the program (188,124), dramatically less bandwidth is 
consumed than the alternative of multiple encryption of all program 
data, thus permitting a larger number of programs to be carried over... 

Detailed Description 

... them to PlDs B and C respectively, so that they can be identified 
later for encryption under two different systems . 

Preferably, the duplicate packets are inserted into the data stream 
adjacent one another in the location of the originally duplicated packet 
now with PID. . . 
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English Abstract 

An encryption arrangement for multiple encryption of television 
programs. A system according to embodiments of the present invention 
multiple encrypts only a portion of the data required for full 



presentation of a television program to... 

.. .encrypting a portion of the program, dramatically less bandwidth is 
consumed than the alternative of multiple encryption of all program 
data, thus permitting a larger number of multiple conditional access 
systems in. . . 

Detailed Description 

... them to PlDs B and C respectively, so that they can be identified 
later for encryption under two different systems . 

Preferably, the duplicate packets are inserted into the data stream 
adjacent one another in the location of the originally duplicated packet 
now with PID. . . 

Claim 

... packets into the digital content in place of the first duplicate 
packets to produce partially encrypted content. 129. The method 
according to claim 128, further comprising identifying the second 
duplicate packets and encrypting the second duplicate packets to produce 
second encrypted duplicate packets. 

130. Themetnodaccordi ngtocl ai ml 29 , f urthercompri si ngi nserti nqthesecond 
encrypted duplicate packets into the digital content in place of the 
second duplicate packets to produce partially dual encrypted content. 
. A method of manipulating packetized digital content, comprising: 
examining unencrypted packets to identify a predetermined packet type... 

. . .packets; and 

inserting the first and secondencrypted packets into the digital content 
to produce partially encrypted content. 132. The method according to 
claim 131, wherein the first and second duplicate packets are encrypted 
under first and second encryption algorithms. \- 
. A method of manipulating packetized digital content, comprising: 
examining unencrypted packets to identify a predetermined packet type... 

...first and second duplicate packets; 
encrypting the first duplicate packets; and 

inserting the encrypted first duplicate packets into the digital 
content to produce partially encrypted content. . A method of 
allowing multiple conditional access providers in a content 
delivery system, comprising: 
examining unencrypted packets... 

...identify packets of a 
predetermined type; 

encrypting packets of the predetermined type using a first encryption 
method used by a first conditional access provider 
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Detailed Description 
Claims 

English Abstract 

An encryption arrangement for multiple encryption programs. A system 
according to embodiments of the present invention multiple encrypts 
only a portion of the data required for full presentation of a television 
program to permit coexistence of multiple conditional access 
encryption systems (40, 140) associated with multiple manufacturer's 
set-top boxes (36, 136) within a single system. PID mapping techniques 
are used to distinguish between multiple encryptions. By only 
encrypting a portion of the program, dramatically less bandwidth is 
consumed than the alternative of multiple encryption of all program 
data, thus permitting a larger number of programs to be carried over... 

Detailed Description 

them to pin B and C respectively, so that they can be identified later 
for encryption under two different systems , Preferably, the 
duplicate packets are inserted into the data stream 

Claim 

medium carrying encrypted content encrypted by the method according to 
claim 1 0. 

30 A method of encrypting content, comprising: 

encrypting content according to a first encryption method to produce a... 
method according to claim 33, further comprising encrypting the 
replicated identified portion using a first encryption algorithm . 
10 

1 1 35. The method according to claim 34, further comprising: 



. .second 

1 3 replicated portion; and 

1 4 encrypting the second replicated portion using a second encryption 
1 5 algorithm . 
1 6 

1 7 36. The method according to claim 35, further comprising combining 
the. . .encrypting a portion of the packets containing the digital 
television signal 

according to a first encryption algorithm ; 

encrypting the portion of the packets containing the digital television 
signal 



according to a second encryption algorithm ; 

leaving a portion of the packets containing the digital television 

signal 

unencrypted; 

assigning a primary packet identifier to... 

. . .unencrypted packets; 
assigning a primary packet identifier to the packets encrypted under the 
first 

0 encryption algorithm ; and 

assigning a secondary packet identifier to the packets encrypted under 
the 2 second encryption... 
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Detailed Description 

English Abstract 

An encryption arrangement (108) for multiple encryption of television 
programs. A system according to the embodiments of the present invention 
multiple encrypts only a portion of the data required for full 
presentation of a television program to permit coexistence of multiple 
conditional access (118 and 124) encryption systems associated with 
multiple manufacturer's set-top boxes (36 and 136) within a single... 

...encrypting a portion of the program, dramatically less bandwidth is 



consumed than the alternative of multiple encryption of all program 
data, thus permitting a larger number of programs to be carried over... 

Detailed Description 

... selects packets that are to be dual 
encrypted under any of the above partial dual encryption methods . 
Those packets are then duplicated with new PlDs so that they can be later 
identified. . . 

...them to pids B and C r6gjYecti vely , so that they can be identified later 
for encryption under two different systems . 

Preferably, the duplicate packets are inserted into the data stream 
adjacent one another in the location of the originally duplicated packet 
now with pid. . . 
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Detailed Description 

English Abstract 

...been compromised, such as by a malicious attack or corrupted data. The 
file units remain encrypted except during processing with successive 
generations of each encrypted fi le unit stored in a secured memory, 
which cannot be overwritten but only copied. Compromised... 

...is reduced by frequent optimization of system operation. Digital systems 
only accept file units from other secure digital systems having an 



approved digital identifier, which is embedded in each file unit. 



Detailed Description 

code set to determine a best match from a plurality of potential best 
character code matches . For text based file units, a spell -cbeck, 
dictionary check and graminar check can be used to assist in determining 
the best character code match , or when the file units are expressed 
in hexadecimal code, a substitute hexadecimal code can be used which 
produces. . .encrypted and remain encrypted except during processing. Not 
only is the data element of a file unit encrypted but also the tacj 
elements using a separate encryption key . The tag unit requires 
decryption before the data element can be decrypted as the tag 
contains the key for the data element encryption. 

Yet... 7, the tag 31 of the file unit is decrypted at 81 using a first 
encryption key . As mentioned, the tag includes a second encryption 

key which is used at 83 to decrypt the data element of the file 
unit. If the file unit was not 
15 

copied from the secured. . .unique file ID) in the memory map at 99, 101 
and 103. if the tag elements match those in the memory map at 105, 
then the file unit is considered to be... 
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Claims 



English Abstract 

...of the TAD (10); generates (212) a signature of the second information 
using a first encryption process; egnerates (216) a set of session keys 
(Ksl, Ks2, Ks3) by a second encryption process responsive to the 
random number (R) and a set of stored working keys (K"sub"wl 1 K M sub M w2 f 
K"sub"w3); and generates (218) third information by encrypting the 
second information and the signature using a third encryption process 
responsive to the set of session keys (Ksl, Ks2, Ks3). A dat structure 
(42... 

Publication Year: 2002 
Claim 

is responsive to said first identification code; 
c. providing for generating a set of session keys by a second 
encryption process , wherein said second encryption process is ... 
for generating second information and fifth information by decrypting 
said third information using said third encryption process that is 
responsive to said set of 
session keys; 

e. providing for generating a signature of said second information, 
wherein said 

signature is generated by said first encryption process ; 

f. providing for comparing said signature with said fifth information; 
and g. if said signature. . .further comprising providing for transmitting 
to a third computer said random number, a set of encrypted working keys 
for said third encryption process and said third information, and 
receiving from said third computer a result, wherein said set of 
encrypted working keys is responsive to said first identification 
code, said set of encrypted working keys are encrypted with a set 
of keys of said third computer, the operation of providing for acting... 
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Detailed Description 

English Abstract 

The present invention is a data protection system that includes a 
multiplicity of terminals, and an encryption device that encrypts 
distribution data that is distributed to each terminal. Each terminal is 
corresponded with one node... 
Publication Year: 2002 

Detailed Description 

software,- or the like for decrypting digital content 
using the exposed key, and make illegal copies of the digital 
content . Consequently, to protect copyright it will no longer 
be possible to encrypt and distribute digital content using an 
encryption key that corresponds to the exposed decryption key. 

For example, taking into consideration a DVD reproductionresul t , after 
the master key is exposed, DVD 

manufacturers must use a different master key to encrypt digital 

content for distribution. However, a problem arises that since 
the DVD reproduction terminal that has been... 
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Detailed Description 

English Abstract 

The present invention is directed to methods and apparatus that partially 
encrypt an information data file. An exemplary method includes dividing 
(210) the information file into a... 

...information file to preclude reconstruction of the information file 
using only the first file, and encrypting (215) the second file. 
Additionally, the method provides for transmitting the first file and 
the encrypted second file from a first device (510) to a second device 
(530). 

Publication Year: 2002 

Detailed Description 

embodiment, the image file 340 is not available outside the secure 
device 360. Therefore, a copy of the image file 300 is not 
available for 

unauthorized copying by the owner of the device 360. The encryption 
/decryption process can include additional use limitations, such as 
limiting the number of prints that can be made from the reconstructed 
image file 340. 

2 5 The division of the information file can be accomplished by any 
of 

different methods . For example, parts of the information file 

that form the second file can be selected by a user selected pattern or 
from. . . 



22/3 f K/43 (Item 43 from file: 349) 

DIALOG (R) Fi 1 e 349:PCT FULLTEXT 

(c) 2006 WlPO/univentio. All rts. reserv. 

00857633 **lmage available** 
A HYBRID STREAM CIPHER 
CHIFFREMENT A CHAIN E HYBRIDE 

Patent Applicant/Assignee: 

mainstream encryption, 2835 E. Washington Boulevard, Los Angeles, CA 
90023, US, US (Residence), US (Nationality) 
Inventor(s) : 

ANANTH viswanath, 27127 Candington Court, Valencia, CA 91354, US, 

Legal Representati ve : 

SCHAAL William w (et al) (agent), Blakely, Sokoloff, Taylor & zafman, 7th 
floor, 12400 Wilshire Boulevard, Los Angeles, CA 90025-1026, US, 

Patent and Priority information (Country, Number, Date): 

Patent: WO 200191367 Al 20011129 (WO 0191367) 

Application: wo 2001US16931 20010523 (PCT/WO US0116931) 

Priority Application: US 2000206605 20000523; US 2001864042 20010522 

Designated States: 

(Protection type is "patent" unless otherwise stated - for applications 
prior to 2004) 

AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ 
EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR 
LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL 



TJ TM TR TT TZ UA UG UZ VN YU ZA ZW 

(EP) AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR 

(OA) BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG 

(AP) GH GM KE LS MW MZ SD SL SZ TZ UG ZW 

(EA) AM AZ BY KG KZ MD RU TJ TM 
Publication Language: English 
Filing Language: English 
Full text word Count: 22063 

Patent and Priority information (Country, Number, Date): 

Patent: . . . 20011129 

Full text Availability: 

Detailed Description 

English Abstract 

in one embodiment, a hybrid stream cipher operating within a computing 
device. The hybrid stream cipher comprises at least two software 
routines. A first routine (155) is responsible for dividing incoming 
plain text into variable-sized blocks (105). A second software routine 

is for converting the plain text into cipher text based on an 
encryption key (115), an internal identifier and perhaps a percentage of 
random data value (100). 
Publication Year: 2001 

Detailed Description 

cipher text sequence. 

Another feature introduced by the hybrid stre'am cipher i:nvolves a 
second verification and decryption routine which includes decrypting 
"COUNT 1 cipher text , removing "TAlC random data , and verifying the 
hash bytes in cipher text stream (see item 1027). The details of... 

...LENGTH. Next, the combined stream data 
(including cipher text and hash bytes) and the random data are 
separated in the data sequence. Then, the second verification routine 
decrypts the cipher text at the positions previously identified, 
copies the hash bytes into the array HASH-BYTES [ and initializes the 
hash byte positions in... 



